Not sure if anybody needs this, but for me the following works to get a local cert working for Otto on Windows:
Download OpenSSL on the server machine (Windows 3.5.0 64 Bit exe)
Create a file named “MyMachine.cnf” and add the following content:
"[req]
default_bits = 2048
distinguished_name = req_distinguished_name
req_extensions = req_ext
x509_extensions = v3_ca
prompt = no
[req_distinguished_name]
CN = “MyMachine.local”
[req_ext]
subjectAltName = @alt_names
[v3_ca]
subjectAltName = @alt_names
basicConstraints = CA:TRUE
[alt_names]
DNS.1 = MyMachine.local"
“MyMachine.local” can be any locally accessible (sub)domain name - without the quotes!
Execute the following command in PowerShell:
“openssl req -x509 -nodes -newkey rsa:2048 -keyout MyMachine.key -out MyMachine.crt -days 3650 -config MyMachine.cnf -extensions v3_ca”
This is for a 10 year valid local cert, adapt to your likening.
Then convert the file into Windows format:
“openssl x509 -outform der -in MyMachine.crt -out MyMachine.der”
Add the cert to the “trusted root certificate store” AND the “intermediate certificate store”
Install the .cer and .key files in the FileMaker Server Admin Console
Restart FileMaker Server
If you want a secure connection in FileMaker you may also need to add the cert to your client machines/Remote Desktop/…
If you have a better more easy way please share